virus logo Intrusion Prevention

MS.Office.OLE.Multiple.DLL.Injection

description-logoDescription

This indicates an attack attempt to exploit a remote Code Execution vulnerability in Microsoft Office.
The vulnerability is due to the way the vulnerable application loads DLL file. A remote attacker can exploit this to trick an unsuspecting user into opening a harmless file which leads to loading and executing of a malicious DLL.

affected-products-logoAffected Products

Microsoft Office 2007
Microsoft Office 2010
Microsoft Office 2013
Microsoft Office 2016

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrades or patches from the vendor:
http://technet.microsoft.com/security/bulletin/MS15-132
http://technet.microsoft.com/security/bulletin/MS16-014
http://technet.microsoft.com/security/bulletin/MS16-025
http://technet.microsoft.com/security/bulletin/MS16-041
http://technet.microsoft.com/security/bulletin/MS16-070

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-06-10 14.629 Severity:critical:high
ID 43455
Created Dec 30, 2016
Updated Jun 07, 2019
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
CVE ID CVE-2016-3235 CVE-2016-0100 CVE-2016-0041 CVE-2015-6133 CVE-2015-6128 CVE-2015-6132
Known Exploited Yes
Exploit Prediction Score 96.25%
Default Action pass
Active
Affected OS Windows, MacOS
Affected App MS_Office